Audits
Settings
Links
Tenable Cloud
Tenable Community & Support
Tenable University
Theme
Light
Dark
Auto
Help
Plugins
Overview
Plugins Pipeline
Newest
Updated
Search
Nessus Families
WAS Families
NNM Families
LCE Families
Tenable OT Security Families
About Plugin Families
Release Notes
Audits
Overview
Newest
Updated
Search Audit Files
Search Items
References
Authorities
Documentation
Download All Audit Files
Indicators
Overview
Search
Indicators of Attack
Indicators of Exposure
CVEs
Overview
Newest
Updated
Search
Attack Path Techniques
Overview
Search
Links
Tenable Cloud
Tenable Community & Support
Tenable University
Settings
Theme
Light
Dark
Auto
Detections
Plugins
Overview
Plugins Pipeline
Release Notes
Newest
Updated
Search
Nessus Families
WAS Families
NNM Families
LCE Families
Tenable OT Security Families
About Plugin Families
Audits
Overview
Newest
Updated
Search Audit Files
Search Items
References
Authorities
Documentation
Download All Audit Files
Indicators
Overview
Search
Indicators of Attack
Indicators of Exposure
Analytics
CVEs
Overview
Newest
Updated
Search
Attack Path Techniques
Overview
Search
Audits
Item Search
Audits
Item Search
Filters (1)
Description
Filename
Plugin
References
Control ID
Relevance
Description
Plugin
Filename
References (Active)
Search by References
Clear All
‹‹ Previous
Previous
Page 1 of 20
• 984 Total
Next
Next ››
Name
Audit Name
Plugin
Category
AIOS-12-000800 - If a third-party VPN client is installed on the iOS/iPadOS device, it must not be configured with a DoD VPN profile.
AirWatch - DISA Apple iOS 12 v1r2
MDM
AIOS-12-001000 - Apple iOS must be configured to enforce an application installation policy by specifying one or more authorized application repositories, including [selection: Apple App Store].
MobileIron - DISA Apple iOS 12 v1r2
MDM
AIOS-13-001300 - Apple iOS/iPadOS must not include applications with the following: access to Siri when the device is locked.
MobileIron - DISA Apple iOS/iPadOS 13 v1r1
MDM
CASA-VN-000210 - The Cisco ASA must be configured to use a Diffie-Hellman (DH) Group of 14 or greater for Internet Key Exchange (IKE) Phase 1.
DISA STIG Cisco ASA VPN v1r1
Cisco
CASA-VN-000210 - The Cisco ASA must be configured to use a Diffie-Hellman (DH) Group of 16 or greater for Internet Key Exchange (IKE) Phase 1 - IKE Phase 1.
DISA STIG Cisco ASA VPN v1r2
Cisco
CASA-VN-000210 - The Cisco ASA must be configured to use a Diffie-Hellman (DH) Group of 16 or greater for Internet Key Exchange (IKE) Phase 1 - IKE Phase 1.
DISA STIG Cisco ASA VPN v1r3
Cisco
CASA-VN-000550 - The Cisco ASA remote access VPN server must be configured to use TLS 1.2 or higher to protect the confidentiality of remote access connections.
DISA STIG Cisco ASA VPN v1r3
Cisco
CASA-VN-000550 - The Cisco ASA remote access VPN server must be configured to use TLS 1.2 or higher to protect the confidentiality of remote access connections.
DISA STIG Cisco ASA VPN v1r2
Cisco
CASA-VN-000640 - The Cisco VPN remote access server must be configured to use AES256 or greater encryption for the Internet Key Exchange (IKE) Phase 1 to protect confidentiality of remote access sessions - IKE Phase 1 to protect confidentiality of remote access sessions.
DISA STIG Cisco ASA VPN v1r3
Cisco
CASA-VN-000650 - The Cisco ASA VPN remote access server must be configured to use AES256 or greater encryption for the IPsec security association to protect the confidentiality of remote access sessions - AES encryption for the IPsec security association to protect the confidentiality of remote access sessions.
DISA STIG Cisco ASA VPN v1r2
Cisco
CASA-VN-000650 - The Cisco ASA VPN remote access server must be configured to use AES256 or greater encryption for the IPsec security association to protect the confidentiality of remote access sessions - AES encryption for the IPsec security association to protect the confidentiality of remote access sessions.
DISA STIG Cisco ASA VPN v1r3
Cisco
CISC-ND-001140 - The Cisco switch must be configured to encrypt SNMP messages using a FIPS 140-2 approved algorithm - snmp-server group
DISA STIG Cisco IOS XE Switch NDM v1r1
Cisco
CISC-ND-001140 - The Cisco switch must be configured to encrypt SNMP messages using a FIPS 140-2 approved algorithm - snmp-server user aes-128
DISA STIG Cisco NX-OS Switch NDM v1r1
Cisco
CNTR-K8-000150 - The Kubernetes Controller Manager must use TLS 1.2, at a minimum, to protect the confidentiality of sensitive data during electronic dissemination.
DISA STIG Kubernetes v1r11
Unix
CNTR-K8-000150 - The Kubernetes Controller Manager must use TLS 1.2, at a minimum, to protect the confidentiality of sensitive data during electronic dissemination.
DISA STIG Kubernetes v1r10
Unix
CNTR-K8-000160 - The Kubernetes Scheduler must use TLS 1.2, at a minimum, to protect the confidentiality of sensitive data during electronic dissemination.
DISA STIG Kubernetes v1r10
Unix
CNTR-K8-000160 - The Kubernetes Scheduler must use TLS 1.2, at a minimum, to protect the confidentiality of sensitive data during electronic dissemination.
DISA STIG Kubernetes v1r2
Unix
CNTR-K8-000160 - The Kubernetes Scheduler must use TLS 1.2, at a minimum, to protect the confidentiality of sensitive data during electronic dissemination.
DISA STIG Kubernetes v1r5
Unix
CNTR-K8-000160 - The Kubernetes Scheduler must use TLS 1.2, at a minimum, to protect the confidentiality of sensitive data during electronic dissemination.
DISA STIG Kubernetes v1r6
Unix
CNTR-K8-000160 - The Kubernetes Scheduler must use TLS 1.2, at a minimum, to protect the confidentiality of sensitive data during electronic dissemination.
DISA STIG Kubernetes v1r8
Unix
CNTR-K8-000170 - The Kubernetes API Server must use TLS 1.2, at a minimum, to protect the confidentiality of sensitive data during electronic dissemination.
DISA STIG Kubernetes v1r5
Unix
CNTR-K8-000170 - The Kubernetes API Server must use TLS 1.2, at a minimum, to protect the confidentiality of sensitive data during electronic dissemination.
DISA STIG Kubernetes v1r11
Unix
CNTR-K8-000180 - The Kubernetes etcd must use TLS to protect the confidentiality of sensitive data during electronic dissemination.
DISA STIG Kubernetes v1r5
Unix
CNTR-K8-000180 - The Kubernetes etcd must use TLS to protect the confidentiality of sensitive data during electronic dissemination.
DISA STIG Kubernetes v1r11
Unix
CNTR-K8-000190 - The Kubernetes etcd must use TLS to protect the confidentiality of sensitive data during electronic dissemination.
DISA STIG Kubernetes v1r10
Unix
CNTR-K8-000190 - The Kubernetes etcd must use TLS to protect the confidentiality of sensitive data during electronic dissemination.
DISA STIG Kubernetes v1r2
Unix
ESXI-67-000010 - The ESXi host SSH daemon must use DoD-approved encryption to protect the confidentiality of remote access sessions.
DISA STIG VMware vSphere 6.7 ESXi OS v1r2
Unix
OL08-00-040161 - OL 8 must force a frequent session key renegotiation for SSH connections to the server.
DISA Oracle Linux 8 STIG v1r7
Unix
OL08-00-040161 - OL 8 must force a frequent session key renegotiation for SSH connections to the server.
DISA Oracle Linux 8 STIG v1r6
Unix
OL08-00-040161 - OL 8 must force a frequent session key renegotiation for SSH connections to the server.
DISA Oracle Linux 8 STIG v1r1
Unix
OL08-00-040161 - OL 8 must force a frequent session key renegotiation for SSH connections to the server.
DISA Oracle Linux 8 STIG v1r9
Unix
RHEL-08-010020 - RHEL 8 must implement NIST FIPS-validated cryptography for the following: to provision digital signatures, to generate cryptographic hashes, and to protect data requiring data-at-rest protections in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, and standards - fips-mode-setup
DISA Red Hat Enterprise Linux 8 STIG v1r7
Unix
RHEL-08-010020 - RHEL 8 must implement NIST FIPS-validated cryptography for the following: to provision digital signatures, to generate cryptographic hashes, and to protect data requiring data-at-rest protections in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, and standards - fips-mode-setup
DISA Red Hat Enterprise Linux 8 STIG v1r9
Unix
RHEL-08-010020 - RHEL 8 must implement NIST FIPS-validated cryptography for the following: to provision digital signatures, to generate cryptographic hashes, and to protect data requiring data-at-rest protections in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, and standards - grub2-editenv
DISA Red Hat Enterprise Linux 8 STIG v1r6
Unix
RHEL-08-010020 - RHEL 8 must implement NIST FIPS-validated cryptography for the following: to provision digital signatures, to generate cryptographic hashes, and to protect data requiring data-at-rest protections in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, and standards - proc
DISA Red Hat Enterprise Linux 8 STIG v1r6
Unix
RHEL-08-010020 - RHEL 8 must implement NIST FIPS-validated cryptography for the following: to provision digital signatures, to generate cryptographic hashes, and to protect data requiring data-at-rest protections in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, and standards - proc
DISA Red Hat Enterprise Linux 8 STIG v1r9
Unix
RHEL-08-010020 - RHEL 8 must implement NIST FIPS-validated cryptography for the following: to provision digital signatures, to generate cryptographic hashes, and to protect data requiring data-at-rest protections in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, and standards.
DISA Red Hat Enterprise Linux 8 STIG v1r3
Unix
RHEL-08-010020 - RHEL 8 must implement NIST FIPS-validated cryptography for the following: to provision digital signatures, to generate cryptographic hashes, and to protect data requiring data-at-rest protections in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, and standards. - fips-mode-setup
DISA Red Hat Enterprise Linux 8 STIG v1r5
Unix
RHEL-08-010020 - RHEL 8 must implement NIST FIPS-validated cryptography for the following: to provision digital signatures, to generate cryptographic hashes, and to protect data requiring data-at-rest protections in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, and standards. - proc
DISA Red Hat Enterprise Linux 8 STIG v1r5
Unix
RHEL-08-040161 - RHEL 8 must force a frequent session key renegotiation for SSH connections to the server.
DISA Red Hat Enterprise Linux 8 STIG v1r1
Unix
RHEL-08-040161 - RHEL 8 must force a frequent session key renegotiation for SSH connections to the server.
DISA Red Hat Enterprise Linux 8 STIG v1r6
Unix
RHEL-08-040161 - RHEL 8 must force a frequent session key renegotiation for SSH connections to the server.
DISA Red Hat Enterprise Linux 8 STIG v1r9
Unix
RHEL-09-671020 - RHEL 9 IP tunnels must use FIPS 140-2/140-3 approved cryptographic algorithms.
DISA Red Hat Enterprise Linux 9 STIG v1r2
Unix
SLES-15-010160 - The SUSE operating system must implement DOD-approved encryption to protect the confidentiality of SSH remote connections.
DISA SLES 15 STIG v1r13
Unix
UBTU-18-010421 - The Ubuntu operating system SSH server must be configured to use only FIPS-validated key exchange algorithms.
DISA STIG Ubuntu 18.04 LTS v2r12
Unix
UBTU-18-010421 - The Ubuntu operating system SSH server must be configured to use only FIPS-validated key exchange algorithms.
DISA STIG Ubuntu 18.04 LTS v2r13
Unix
UBTU-20-010045 - The Ubuntu operating system SSH server must be configured to use only FIPS-validated key exchange algorithms.
DISA STIG Ubuntu 20.04 LTS v1r9
Unix
VCRP-67-000003 - The rhttpproxy must be configured to operate solely with FIPS ciphers.
DISA STIG VMware vSphere 6.7 RhttpProxy v1r1
Unix
WN11-CC-000290 - Remote Desktop Services must be configured with the client connection encryption set to the required level.
DISA Windows 11 STIG v1r1
Windows
WN11-CC-000290 - Remote Desktop Services must be configured with the client connection encryption set to the required level.
DISA Windows 11 STIG v1r4
Windows
‹‹ Previous
Previous
Page 1 of 20
• 984 Total
Next
Next ››